OpenACS / openacs-4 / packages / acs-tcl / tcl

security-procs.tcl

Tools

Line History

Line Count Graph
Line Count Graph

Stats

Commits this week: 0
Total Committers: 22
Last Commit: 30 Apr
Commits this week: 0
Total Lines of Code (LoC): 2,822
Net change in LoC this week: 0

Commit Activity

Commits By Day In Week
52 week commits volume
Commits By Day In Week
Commits by day
Commits By Day In Week
Commits by hour
Commits By Hour In Day
Commit calendar
 

Most active committers (90 days)

loading
loading
  • last updated 7 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Wednesday 31 May 2017
1:48 pm

gustafn

Provide more infrastructure support for host-node-maps for more flexible domain handling

- add optional -cookie_domain parameter to the following functions

ad_user_login

ad_user_logout

sec_generate_session_id_cookie

auth::issue_login (wrapper for ad_user_login)

if not specified, the functions are full backward compatible

- add optional parameter -host_node_id to auth::authenticate

which refers to the node_id in the host-node-map

- pass host_node_id from from/to register pages

TODO:

1) probably, sec_generate_session_id_cookie picks up the wrong

session_id via [ad_conn session_id]

2) check interaction with CookieDomain (probably, we need

must not pass host_node_id wheren CookieDomain is non-empty)

Options
    • -29
    • +48
    ./security-procs.tcl
  2. … 7 more files in changeset.
Tuesday 30 May 2017
11:05 pm

gustafn

- fix bug for obtaining logout_url on host-node mapped subsites

- factor out security::get_register_subsite to streamline behavior of ad_get_login_url and ad_get_logout_url

Options
    • -40
    • +45
    ./security-procs.tcl
Friday 26 May 2017
7:02 pm

gustafn

security::driver: consider additionally nsssl_v4 nsssl_v6 as possible names

Options
    • -2
    • +2
    ./security-procs.tcl
10:20 am

gustafn

Make sure that driver dict d is set in host-node-mapped cases (many thanks to stefan sobernig for pointin that out)

Options
    • -3
    • +5
    ./security-procs.tcl
Tuesday 23 May 2017
10:51 pm

gustafn

- Refactor ad_get_login_url reduce replicated code and to make semantics clearer

- ad_get_login_url handles now as well cases, where a subsite is mapped to an application package on a subsite

- fix a bug in util_current_location in connection with hostnode map

Options
    • -127
    • +144
    ./security-procs.tcl
  2. … 2 more files in changeset.
Thursday 04 May 2017
8:20 am

gustafn

allow host header fields with trailing dots (as these are allowed from DNS)

Options
    • -1
    • +7
    ./security-procs.tcl
Saturday 22 Apr 2017
8:11 pm

gustafn

Standardize spelling of names of products (Tcl, AOLserver, PostgreSQL, NaviServer)

Options
    • -3
    • +3
    ./security-procs.tcl
  2. … 43 more files in changeset.
Friday 21 Apr 2017
9:11 pm

gustafn

Fix editing bug

Options
    • -2
    • +2
    ./security-procs.tcl
4:22 pm

gustafn

Fix spelling errors

Options
    • -3
    • +3
    ./security-procs.tcl
  2. … 22 more files in changeset.
Saturday 15 Apr 2017
12:12 pm

gustafn

- Tcl idioms: simplify access to first character

Options
    • -4
    • +4
    ./security-procs.tcl
  2. … 8 more files in changeset.
11:16 am

gustafn

- fix name/address check: one should not check for the hostname (or

its IP address), but the for DNS name of the configured driver and

its IP addresses. If a host has multiple IP addresses, there might

not be a nsd driver configured on the hostname of the machine.

- make documentation more precise

- provide cross references to similar commands

Options
    • -4
    • +9
    ./security-procs.tcl
  2. … 1 more file in changeset.
Sunday 26 Mar 2017
5:22 pm

gustafn

- fix variable name in lmap statement

Options
    • -2
    • +2
    ./security-procs.tcl
5:14 pm

gustafn

- push coockie encoding to emulation level (naviserver does this natively, the aolserver variant handles it no the low-level functions)

Options
    • -4
    • +4
    ./security-procs.tcl
  2. … 1 more file in changeset.
5:05 pm

gustafn

ease reading of debug messages; don't unset coockie(s) if there is no session cookie

Options
    • -3
    • +9
    ./security-procs.tcl
Thursday 02 Mar 2017
12:55 am

gustafn

Fix security::validated_host_header on configurations without virtual hosts

Options
    • -4
    • +9
    ./security-procs.tcl
Thursday 16 Feb 2017
11:09 am

gustafn

Streamlined one more place with new infrastructure (security::configured_driver_info)

Simplified code, improved documentation

Options
    • -29
    • +27
    ./security-procs.tcl
Sunday 05 Feb 2017
12:36 pm

gustafn

- improve documentation

Options
    • -2
    • +16
    ./security-procs.tcl
Thursday 02 Feb 2017
10:59 pm

gustafn

Prettify code

Options
    • -4
    • +5
    ./security-procs.tcl
12:30 pm

gustafn

- improve proc documentation

Options
    • -6
    • +14
    ./security-procs.tcl
12:26 pm

gustafn

- Make security::locations aware of potentially multiple drivers listening on multiple ports

- use "ns_driver info" when available

Options
    • -93
    • +194
    ./security-procs.tcl
  2. … 1 more file in changeset.
Thursday 29 Dec 2016
8:42 pm

gustafn

security::validated_host_header:

- check also in nssock sections for v4 and v6

- check as well virtual server configuration

Options
    • -14
    • +32
    ./security-procs.tcl
Thursday 01 Dec 2016
3:37 pm

gustafn

- perform nonce-computation independent of user_id computation

Options
    • -2
    • +12
    ./security-procs.tcl
3:31 pm

gustafn

- put resetting of untrusted user_id to the right place

Options
    • -4
    • +1
    ./security-procs.tcl
  2. … 1 more file in changeset.
3:26 pm

gustafn

- provide initial value for untrusted user_id

Options
    • -2
    • +5
    ./security-procs.tcl
3:13 pm

gustafn

- setting nonce always (also for non-authenticated requests)

Options
    • -3
    • +2
    ./security-procs.tcl
Tuesday 22 Nov 2016
10:13 am

gustafn

- use variable names consistently

Options
    • -4
    • +4
    ./security-procs.tcl
10:09 am

gustafn

- fix handling of csrf token

Options
    • -3
    • +3
    ./security-procs.tcl
Friday 11 Nov 2016
6:05 pm

gustafn

- make sure, that the sec_handler's global variables are always set (also in error cases, blocked bots, etc.)

Options
    • -1
    • +12
    ./security-procs.tcl
Thursday 29 Sep 2016
11:24 pm

gustafn

- allow csrf token generation in background jobs

Options
    • -5
    • +12
    ./security-procs.tcl
Thursday 22 Sep 2016
7:23 pm

gustafn

- improve comments

Options
    • -4
    • +10
    ./security-procs.tcl